General

  • Target

    545b95fd1922a264288438c0bf099974e079d3036a9eb638cedac93bc2107809

  • Size

    446KB

  • Sample

    241108-jl2cksydlc

  • MD5

    7d40634976f97b8d3d5bf489df7bcac3

  • SHA1

    529e12b913bb2b57c542a8942f2ec107dc33080f

  • SHA256

    545b95fd1922a264288438c0bf099974e079d3036a9eb638cedac93bc2107809

  • SHA512

    90f261d9e68efe365c8b5b3d647b1157334080a13d275b1264e4542e9baafacc2dd609790dd762dd38755476b3bade35208a571d5e6327b4f0975b6644436778

  • SSDEEP

    6144:+joYSL1G2fCi9q2IxEjfR9uTCCZC9+IpUrfi7+Pe7cTT6Hin6v9R:FbGCIEjfRulC9+IerfaYe7LW6v

Malware Config

Extracted

Family

redline

Botnet

asia

C2

45.9.20.240:46257

Attributes
  • auth_value

    218353fc70f3440d970e02bf6e2edeb1

Targets

    • Target

      545b95fd1922a264288438c0bf099974e079d3036a9eb638cedac93bc2107809

    • Size

      446KB

    • MD5

      7d40634976f97b8d3d5bf489df7bcac3

    • SHA1

      529e12b913bb2b57c542a8942f2ec107dc33080f

    • SHA256

      545b95fd1922a264288438c0bf099974e079d3036a9eb638cedac93bc2107809

    • SHA512

      90f261d9e68efe365c8b5b3d647b1157334080a13d275b1264e4542e9baafacc2dd609790dd762dd38755476b3bade35208a571d5e6327b4f0975b6644436778

    • SSDEEP

      6144:+joYSL1G2fCi9q2IxEjfR9uTCCZC9+IpUrfi7+Pe7cTT6Hin6v9R:FbGCIEjfRulC9+IerfaYe7LW6v

    • RedLine

      RedLine Stealer is a malware family written in C#, first appearing in early 2020.

    • RedLine payload

    • Redline family

MITRE ATT&CK Enterprise v15

Tasks